More on the two "villians" too. It has a nice description, not overly technical (though inevitable at times) for understanding. Crux of it is remediation is really for CPU vendors to issue firmware updates to protect against these attacks. The OS and affected vendor will "support" with their release to reduce the attack surface or make it harder to exploit.
Unfortunately, there are no software patches or operating system mitigations that can fully mitigate the impacts of the Spectre attacks and the flaws being abused. Only saving grace is browser vendors have begun updating their browsers to disable certain features which make the Spectre attack feasible via JavaScript. If really paranoid, back to basic to disable active scripting like Javascript.
https://research.kudelskisecurity.com/2018/01/04/meltdown-spectre-attacks-on-cpu-flaws/